Bugs item #1041273, was opened at 2004-10-06 11:03 Message generated for change (Comment added) made by jcuen You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1041273&group_id=22866
Category: JBossSX Group: v4.0 Status: Open Resolution: Fixed Priority: 5 Submitted By: Cuen Edwards (jcuen) Assigned to: Scott M Stark (starksm) Summary: Run-as Identity not propagated Initial Comment: Description ---------- JBoss 4.0. is not propagating a bean's run-as identity, to method calls of other enterprise beans, that the bean calls. According to the EJB spec, the run-as identity should be propagated: (From EJBv2.0 pg 434 or EJBv2.1 page 472) "By specifying a run-as identity, however, it is possible to specify that a different principal be substituted for the execution of the methods of the bean’s home, component, and/or web service endpoint interfaces and ANY METHODS OF OTHER ENTERPRISE BEANS THAT THE BEAN MAY CALL." Please note that this was working correctly in all previous 3.2 versions, which I have tested. I have included a test case to demonstrate this error. Here is a brief description of the testcase: There are three beans: -EntityA (EntityBean) -EntityB (EntityBean) -TestSession (SessionBean) There are two security roles: -SessionClient -Application (Not meant to be assigned to a user.) Method permissions have been defined so that an authenticated user in the SessionClient role, may only call methods on TestSession. TestSession's methods then run-as the role Application, which allows it to access any entity beans etc in the application. Method calls are as follows: TestCase --> TestSession.test() --> EntityALocalHome.create() --> EntityBLocalHome.create () The call to TestSession.test() is correctly authenticating the user and then running as the role Application - which allows it to call EntityALocalHome.create(). Inside EntityALocalHome.create() an attempt is then made to call EntityBLocalHome.create() (also requires Application role) - which fails. Configuration ------------ OS: Windows XP JDK: 1.4.2_04 and 1.5.0 ---------------------------------------------------------------------- >Comment By: Cuen Edwards (jcuen) Date: 2004-12-13 12:22 Message: Logged In: YES user_id=532328 The testcase still fails on 4.0.1. RC2. ---------------------------------------------------------------------- Comment By: Scott M Stark (starksm) Date: 2004-11-04 08:49 Message: Logged In: YES user_id=175228 This has been fixed for the 4.0.1RC release. ---------------------------------------------------------------------- Comment By: Scott M Stark (starksm) Date: 2004-10-07 07:05 Message: Logged In: YES user_id=175228 This is due to some changes that were made for the jacc integration that can be done differently. The current tck tests are not validating that the run as identity is being propagated more than one level so this problem did not show up there. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1041273&group_id=22866 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ JBoss-Development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development